Senior Technical Manager, Vulnerability Management

As Senior Technical Manager, Vulnerability Management, your responsibilities involve guiding a talented team through complex technical challenges related to vulnerability assessment, configuration compliance, penetration testing, secure code review, attack surface management, and red teaming exercises. By continuously evaluating threat intelligence in relation to the organisation’s unique context you will help drive proactive improvements that strengthen defences against emerging risks.

SENIOR TECHNICAL MANAGER, VULNERABILITY MANAGEMENT

Salary: Competitive and based on experience
Location: Hong Kong

Keywords: Vulnerability Management, DevSecOps, Penetration Testing, Security Operations, Team Leadership, Compliance, Risk Mitigation, Stakeholder Engagement, Metrics and Reporting, Continuous Improvement

An exceptional opportunity has arisen for a Senior Technical Manager, Vulnerability Management to join a highly respected organisation in Hong Kong. This role is ideal for someone who thrives on nurturing teams, driving continuous improvement, and ensuring robust security across complex infrastructures. You will be at the forefront of safeguarding critical systems by leading a dedicated team responsible for vulnerability scanning, configuration compliance, penetration testing, and DevSecOps practices. The organisation offers a supportive environment that values collaboration, professional growth, and knowledge sharing. With a strong commitment to inclusivity and employee development, you will find flexible working opportunities and access to ongoing training that empowers you to excel in your career while making a meaningful impact on the organisation’s security posture.

* Lead a skilled team focused on infrastructure vulnerability management, application security, and DevSecOps initiatives, fostering an environment of learning and support through coaching and mentoring.
* Collaborate with external service providers and internal stakeholders to ensure high standards of service delivery, effective risk mitigation, and timely remediation of vulnerabilities.
* Benefit from flexible working opportunities and comprehensive training programmes designed to enhance your expertise and support your professional journey within a collaborative culture.

What you'll do:

As Senior Technical Manager, Vulnerability Management, you will play a pivotal role in shaping the organisation’s approach to cyber resilience. Your day-to-day responsibilities will involve guiding a talented team through complex technical challenges related to vulnerability assessment, configuration compliance, penetration testing, secure code review, attack surface management, and red teaming exercises. You will work closely with both internal stakeholders—such as business units and IT leadership—and external partners to ensure that all identified vulnerabilities are addressed promptly with minimal disruption. By continuously evaluating threat intelligence in relation to the organisation’s unique context, you will help drive proactive improvements that strengthen defences against emerging risks. Your ability to communicate clearly through detailed reporting will empower key decision-makers with actionable insights. Success in this role requires not only deep technical expertise but also a passion for supporting others’ growth within an inclusive environment where knowledge sharing is encouraged.

* Oversee the Vulnerability Management Team in all aspects of continuous infrastructure vulnerability scanning and configuration compliance across platforms, databases, networks, and voice systems.
* Direct the execution of penetration testing and scanning activities for both application and infrastructure security as well as development operations (DevSecOps), ensuring best practices are followed throughout.
* Recruit, train, coach, set objectives for, and manage the performance of team members to foster their growth and maintain high standards of service delivery.
* Manage relationships with external service providers and product vendors by establishing clear service level expectations, monitoring performance metrics, and ensuring contractual obligations are met.
* Provide expert oversight on the identification and handling of vulnerabilities by prioritising remediation efforts according to agreed timelines and business impact.
* Ensure comprehensive coverage of vulnerability intelligence by assessing threats within both organisational context and the broader external landscape.
* Monitor the effectiveness of vulnerability management services provided for applications—including those utilising DevSecOps—and infrastructure components to ensure operational excellence.
* Continuously identify control gaps or areas for improvement within the vulnerability management function, proposing initiatives that uplift overall service quality.
* Develop detailed metrics, reports, and service highlights for presentation to business leaders and IT stakeholders to inform decision-making processes.
* Act as the lead during incidents involving actively exploited or critical severity vulnerabilities by developing response plans and overseeing their implementation.

What you bring:

To excel as Senior Technical Manager, Vulnerability Management you will bring extensive experience gained from leading multidisciplinary teams within large-scale organisations. Your background should include hands-on involvement with advanced security technologies alongside strategic oversight of end-to-end vulnerability management processes. You are adept at building trust-based relationships—both internally among colleagues seeking guidance or mentorship and externally when negotiating with vendors or service providers. Your analytical mindset allows you to interpret complex data sets quickly while maintaining focus on practical outcomes that benefit the wider organisation. A commitment to continuous learning ensures you remain up-to-date with evolving threats; meanwhile your communication style fosters understanding across diverse audiences. Above all else your sense of responsibility drives you not only towards achieving operational goals but also towards uplifting those around you through shared success.

* A degree in Computer Science, Information Security or a related discipline demonstrating foundational knowledge essential for this senior position.
* At least 12 years of relevant experience in information security or technology roles with a minimum of 5 years specifically managing teams within the vulnerability management domain across multiple disciplines.
* Proven track record delivering comprehensive vulnerability management services including operating procedures tailored to large-scale environments.
* Exceptional logical reasoning skills paired with analytical thinking abilities that enable you to understand various categories of vulnerabilities and their potential impacts.
* A customer-focused mindset with strong interpersonal skills allowing you to collaborate effectively with colleagues at all levels as well as external partners.
* Demonstrated ability to manage vendor relationships by setting clear expectations around service levels while monitoring ongoing performance against agreed targets.
* Experience working hands-on with technologies such as vulnerability assessment tools, DevSecOps pipelines, penetration testing frameworks, secure code review methodologies, attack surface management solutions, and red teaming strategies.
* Industry-recognised certifications such as CISSP or CISM which validate your expertise in information security best practices.
* Excellent communication skills enabling you to present complex technical findings in accessible ways tailored for both technical audiences and business stakeholders alike.
* A disciplined approach marked by professional integrity that ensures consistent delivery of high-quality results even under pressure.

What sets this company apart:

This organisation stands out due to its unwavering dedication to creating an inclusive workplace where every individual is valued for their unique contributions. Employees benefit from flexible working arrangements that promote work-life balance alongside generous training opportunities designed to support ongoing professional development. The company’s culture emphasises teamwork over hierarchy—encouraging open dialogue between departments so everyone feels empowered to share ideas or raise concerns without hesitation. As part of this forward-thinking environment you’ll have access to cutting-edge resources needed for tackling today’s most pressing cybersecurity challenges while enjoying genuine support from knowledgeable colleagues committed to helping each other grow. The organisation’s reputation for ethical conduct further reinforces its status as an employer of choice among those seeking stability coupled with meaningful purpose in their careers.

What's next:

If you are ready to take your career in vulnerability management to new heights within a supportive environment that values your expertise—this is your moment!

Apply today by clicking on the link provided—your next rewarding challenge awaits.